1135 matches found
VulnCheck KEV: CVE-2024-1071
A SQL Injection is present in WordPress The Ultimate Member plugin...
PT-2024-5201 · Centreon · Centreon Web
Name of the Vulnerable Software and Affected Versions: Centreon Web versions 22.10.0 through 22.10.22 Centreon Web versions 23.04.0 through 23.04.18 Centreon Web versions 23.10.0 through 23.10.12 Centreon Web versions 24.04.0 through 24.04.2 Description: A SQL Injection vulnerability exists in th...
CVE-2024-25209
Barangay Population Monitoring System 1.0 was discovered to contain a SQL injection vulnerability via the resident parameter at /endpoint/delete-resident.php...
Employee Managment System SQL Injection Vulnerability
Employee Managment System is an employee management system. An SQL injection vulnerability exists in Employee Managment System v1.0, which originates from a SQL injection vulnerability in the file /edit.php...
Task Manager SQL Injection Vulnerability
Task Manager is a Code-Projects open source task manager application . Task Manager v1.0 SQL injection vulnerability , the vulnerability stems from the file / TaskManager / EditTask.php SQL injection vulnerability...
PT-2024-20827 · Unknown · Online Medicine Ordering System
Name of the Vulnerable Software and Affected Versions: Online Medicine Ordering System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/omos/?p=products/view product" API endpoint. Recommendations: Fo...
CVE-2024-22221
Dell Unity, versions prior to 5.4, contains SQL Injection vulnerability. An authenticated attacker could potentially exploit this vulnerability, leading to exposure of sensitive information...
PT-2024-13653 · Zoho · Zoho Manageengine Adaudit Plus
Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine ADAudit Plus versions through 7250 Description: The issue allows SQL Injection in the aggregate report feature. There is no information provided about the estimated number of potentially affected devices worldwide or details...
PT-2024-19909 · WordPress · Instawp Connect
Name of the Vulnerable Software and Affected Versions: InstaWP Connect – 1-click WP Staging & Migration versions 0.1.0.9 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for...
PT-2024-20290 · Unknown · Sourcecodester Login System With Email Verification
Name of the Vulnerable Software and Affected Versions: Sourcecodester Login System with Email Verification version 1.0 Description: The issue allows SQL Injection via the user parameter. This could potentially be exploited to extract or modify sensitive data. There is no information provided abou...
WordPress plugin PDF Invoices & Packing Slips for WooCommerce SQL Injection Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site.WordPress plugin is an application plugin. WordPress plugin PDF Invoices &...
Pimcore SQL Injection Vulnerability
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce frameworks and product information management applications. A SQL injection vulnerability exists in Pimcor...
PT-2024-13850 · Prestashop · Sliding Cart Block
Name of the Vulnerable Software and Affected Versions: PrestaShop module "Sliding cart block" blockslidingcart versions up to 2.3.8 Description: A guest can perform SQL injection in the module "Sliding cart block" blockslidingcart for PrestaShop. Recommendations: For versions up to 2.3.8, update ...
PT-2024-14834
Name of the Vulnerable Software and Affected Versions Mergen Software Quality Management System versions prior to v1.2 Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attack...
Kashipara Billing Software SQL Injection Vulnerability
Kashipara Billing Software is an application from Kashipara India. Kashipara Billing Software version 1.0 suffers from a SQL injection vulnerability that stems from a SQL injection vulnerability in the id of the itemlistedit.php file...
Fighting Cock Information System SQL Injection Vulnerability
Fighting Cock Information System is a chicken information system by chrisjelo individual developer. code-projects Fighting Cock Information System version 1.0 has a SQL injection vulnerability that originates from a SQL injection vulnerability in the file /admin/pages/editchicken.php...
Fighting Cock Information System SQL Injection Vulnerability
Fighting Cock Information System is a chicken information system by chrisjelo individual developer. code-projects Fighting Cock Information System version 1.0 suffers from a SQL injection vulnerability that originates from a SQL injection vulnerability in the /admin/action/update-deworm.php file...
Fighting Cock Information System SQL Injection Vulnerability
Fighting Cock Information System is a chicken information system by chrisjelo individual developer. code-projects Fighting Cock Information System version 1.0 has a SQL injection vulnerability that originates from a SQL injection vulnerability in the file /admin/action/new-feed.php...
Cisco Evolved Programmable Network Manager Security Vulnerability
Cisco Evolved Programmable Network Manager is a network management solution from Cisco. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the existence of multiple vulnerabilities that could allow an attacker to...
Cisco Evolved Programmable Network Manager Security Vulnerability
Cisco Evolved Programmable Network Manager is a network management solution from Cisco. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the existence of multiple vulnerabilities that could allow an attacker to...